Static task
static1
Behavioral task
behavioral1
Sample
a86041875512469a049a66b980a691d1_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a86041875512469a049a66b980a691d1_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a86041875512469a049a66b980a691d1_JaffaCakes118
-
Size
125KB
-
MD5
a86041875512469a049a66b980a691d1
-
SHA1
52185cb1eb1351c0c84640aff72191e9e13542d6
-
SHA256
b7c460abc69b9280dafb92c348bd77300a0680b06164188be65e67c4084b7bdf
-
SHA512
ea010f58bc92cf75f64a3ad3869964e14ee617baf709dfd665ec7edea7c107fe05c2d3abd43aab005a0bc5f6211d2b1e5a81fd4a95b0338830bbcf400347656e
-
SSDEEP
3072:hP4C5mpZIjOn93XvwlJWhYd6BllWG0IzVo3RrAWv/ZPvTdJt0IjOs:NIXIsHv6JSm69WG0IMFdPvZf0IV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a86041875512469a049a66b980a691d1_JaffaCakes118
Files
-
a86041875512469a049a66b980a691d1_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
Size: - Virtual size: 208KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 121KB - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE